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(54) Title: SYSTEMS FOR FINANCIAL AND ELECTRONIC COMMERCE 



(57) Abstract 

A system for electronic commerce 
including banking tools, products and ser- 
vices. The system includes customiz- 
able banking products (figure 7) and cards 
(figure 6), and methods and systems for 
conducting financial transactions (figure 
9) and maintaining records over the In- 
ternet. 



Server for storing and transmitting data 
1 

Creation of a webbank by a user on server 
(preferably via the Internet using a browser), 
the server preferably being a central site 
for all webbanks and being managed by 
a central authority (such as a chartered bank), 
with all transfers of information to or from 
the server preferably being encrypted 



1 

Transmissions of information to and from the user's webbank, 
the transmissions being conducted by the user, by third parties, 

and/or by the central authority, such as: transmissions 
transferring funds between the webbank and any other financial 

source (e.g. another webbank, a traditional bank or other 
financial institution, a credit card, wire transfer or cash payment 
to the central authority, etc.) and transmissions regulating, 
managing or programming the accounts, subaccounts, 
funds or other assets, and so forth, on the webbank 
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WO 00/55793 PCT/USOO/07457 
payment to the vendor's webbank, with the payment clearing instantaneously into that webbank. 
Thus, all steps in the invoicing process can be conducted in a matter of minutes. Likewise, all steps 
from the consumers payment to clearance of payment can likewise be conducted in a matter of 
minutes using the webbank system once the consumer is ready to pay. Once payment is received, 
an electronic receipt can be forwarded back as well. If the vendor and consumer both wish, the 
entire cycle from invoicing to clearance of payment can be nearly instantaneous. 

G. The Electronic Safety Deposit Box 

The electronic safety deposit box is an online electronic lockbox associated with the 
webbank for storage, access, and recordkeeping of a user's important documents and assets. 
Accordingly, the user can easily and quickly access and present verified, digital copies of important 
documents and records from a central location, for self-access or presentation to third parties. 
Such documents can take advantage of date stamping, authentication, and other services provided 
by the metabank for providing security and trusted storage in online and traditional commercial 
transactions. 

//. General Webbank Operation 
A . Creation of Webbank 

In accordance with the inventions disclosed herein, any entity with access to the Internet 
can open up its own private miniature bank located on the Internet, such private "webbank" being 
referred to herein as a webbank, webbank™, minibank or so forth. In the preferred embodiment, 
the entity opens up its webbank by logging into the overseer bank's website (also referred to 
herein as the metabank™ website) over a secure connection, so that the entity can open up its own 
website at the bank. Such website acts as the entity's webbank. The operation and creation of 
websites is well known in the art and all such hardware and software as are used for the operation 
and creation of such websites can be utilized in accordance with the present invention. The entity 
opening the webbank, is referred to herein as the "webbank owner". 

In a preferred embodiment, the entity logs into the metabank's website, and fills out a 
form thereon over a secure connection. Once the form has been filled out, a website is created on 
the web, which is stored on the Company's server, in the same manner as is known in the art, and 
the webaddress for this website is provided to the webbank owner. This webaddress can (as with 
the other webaddresses disclosed herein) be any suitably long and random series of digits and/or 
letters desired. In accordance with the invention, the website serves as the control panel for the 

12 
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are transferred between websites, or so forth, as disclosed in the present inventor's related 
applications listed above. In alternative embodiments, payments can also authorized by any other 
means, e.g. by telephone authorization by the user, and sent by any other means, including means 
well known in the art. 

Preferably, in accordance with the invention, authenticated records are likewise transferred 
instantaneously at the same time as the financial transaction, immediately providing each webbank 
with an authenticated receipt documenting, verifying, confirming, and recording the transaction 
for future reference. 

All transfers or payments made from the website are preferably made sufficiently secure 
methods, such as using encryption technology as is known in the art, or as further developed in 
the future. Assymetric or symmetric encryption can be used for sending information over the 
Internet, or a combination of both. Such encryption methods, including such methods as DES, 
Triple DES, RSA, PGP, among others, are known in the art, and are used to ensure high levels of 
security. 

In a preferred embodiment, the systems used employ identification (e.g. by using digital 
certificates), authentication (e.g. by using digital signatures), nonrepudiation, verification and 
privacy. In one embodiment of the invention, the systems used make use of the processor serial 
number of the user's computer, for further security purposes. 

In further alternative and/or additional embodiments of the invention, information and 
documents are also sent to the webbank to enable centralized storage of important records for 
access at any time by the user. Examples of the types of information which can be sent to the 
personal financial website include: receipts for purchases or payments, credit card statements, bills, 
tax return documents, real estate deeds, and any other desired information. This information is 
sent to the website (e.g. in the same manner that email is currently sent, and/or by sending in 
documents to a central authority which are scanned, and/or by providing electronic filings, 
authentications and certificates of such transactions, etc.) and is stored on the webbank, or in an 
appropriate linked area (e.g. on the overseer bank's server or on the server of an appropriate 
authority.whether private or governmental). Accordingly, when the user wants to access his or 
her credit card receipts, tax records, real estate deeds, marriage license, or so forth, he or she can 
dial up his or her personal financial website and access the relevant information thereon. In a 
further embodiment, a call is made by the user to the website, but the website dials back the user at 
a predetermined Internet address or phone number or other location (or emails the information to 
the user's preset email address) to reduce or obviate the possibility of breaches of security. 

58 
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public keys 

Abstract (Basic) : 

of an account holder (202), is associated -with the public key 
(218) of the public- private key pair of that account holder. A 
record of information belonging to the accounts of the... 

For managing central key authority (CKA)' database in 
account-based digital signature (ABDS) system for managing 
financial institution account using integrated circuit (IC) card, 
credit card or automated teller machine ( ATM ) card used in ATM 
machine, for managing brokerage account using personal digital 
assistant (PDA), bill payment services account using cell phone, 
credit bureau account , pat ient /personal medical records account, 
medical practice management account, government benefits account, 
Internet service provider, employee database authorization account, 
secure area authorization account in buildings and electronic data 
interchange with multiple purchasing agents. Also for use in e-business 
transactions, digital gift... 

. . .The central key authority database including account information is 
effectively managed and the accounts are securely transferred over 
electronic communication system, with accounts being digitally 
signed. . . 



. . .The figure shows the block diagram of account-based digital signature 
system. . . 
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Publication Classification 
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(57) 



ABSTRACT 



Managing a database of a central key authority for a plurality 
of account holders, each account holder having at least one 
account associated with a public key of a public-private key 
pair of that account holder, includes maintaining for each 
account holder a record of information pertaining to the 
accounts of that account holder associated with the public 
keys of the account holder. The information pertaining to the 
accounts of an account holder includes (a) a public key of a 
user device that generates digital signatures, and (b) third- 
party account identifiers each of which identifies to a third- 
party an account of the user that is maintained with the 
third -party and that has been associated with the user's 
public key by the third -party. 
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Optical disk e.g. CD, DVD for authenticating transactions over Internet, 
stores encrypted digital signature of user for signing financial 
transactions over Internet 

Abstract (Basic) : 

The digital signature is encrypted using password and 
stored in the disk for signing financial transactions over Internet. 

Uses miniature CD, DVD for storing digital signatures of 
user for cashing payroll, pay checks, identification of user for 
certified electronic mail concepts, income tax transactions and 
printing refund checks and for transferring refund money to account 
over Internet using credit card, ATM card and driver's license, 
also for authenticating access of personal computer... 

...The figure shows a flowchart for storing user data, digital signature 
and password. . . 
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(57) ABSTRACT 

Described is an apparatus for containment of Digital Per- 
sonal Identity Signatures for use in completing and signing 
documents in a network or Internet environment. The appa- 
ratus contains a digital signature certificate issued by a third 
party that is used in place of an actual signature to allow 
completion of binding contracts through the use of a com- 
puter used over an Internet or Intranet environment. The 
apparatus includes a custom designed Compact Disc con- 
taining encrypted data and software that is used to access the 
digital signature in a secure environment. Access to the data 
is provided in a secure environment by requiring the use of 
an access password or Personal Identification Number, an 
alphabetic pass phrase or, an alphanumeric pass phrase to 
prevent fraudulent use of the digital signature in the event of 
loss or theft of the apparatus. 
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Abstract (Basic) : 

• * • A compact disk drive (26) stores several digital safe 

deposit accounts (40) associated with a private key (44) . A 
computer processor in communication with the automated transaction 
machines ( ATMs ) , produces a digital signature for an electronic 
document (42) based on the private key . 

An INDEPENDENT CLAIM is included for digital signature 
method. . . 



...For digitally signing electronic documents for automated teller 
machine . . . 



...Enables to be easily employed by individuals for protecting and 

digitally signing the electronic documents. Preserves the integrity 
and confidentiality of the electronic documents for long time periods 

...The figure shows a schematic view of the digital signature system... 
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(52) U.S.C1 705/78 

(57) ABSTRACT 

An electronic safe deposit box system (the "ESDB System") 
is disclosed. The ESDB System identifies each of the users 
and each of the electronic files representing written infor- 
mation, data or documents with an alphanumeric code. The 
ESDB System electronically stores written information, data 
and documents sent to the ESDB System. Electronic main- 
tained in the ESDB System may be accessed using an open 
network or group of servers such as the Internet or a closed 
network or group of servers such as an Intranet or LAN. 
Each user has a user identification, password and personal 
identification number ("PIN"). The ESDB System allows 
the user to designate third parties to access a user-controlled 
electronic safe deposit box. The third party may only view 
or print specific electronic files to which the user has 
previously granted the third party access. In addition, the 
ESDB System tracks the activity of third parties within the 
user's electronic safe deposit box, and automatically noti- 
fies, by email, the owner of the box of such activities. 
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[0038] If the user requested to add/delete/modify third 
party access by clicking on the hypertext link 60 in FIG. 4, 
the ESDB System presents the user with a dynamic HTML 
page as shown in FIG. 10. This page shows the third parties 
who have access to certain folders or files in the user's 
electronic safe deposit box as shown in box 61. The user 
would click on to a hypertext link of a specific name in box 
61 if he wanted to delete or modify the access of any such 
third party. The user also has the option of granting a new 
party access to certain folders or electronic files in his box 
by inserting the new third party's member log-in/user iden- 
tification in box 62. If the requested third party is not a 
member, the user can send an automatic email to such third 
party resting that such party become a member of the ESDB 
System by inserting the email address of the third party in 
box 63 and pressing the "Submit/Send" key in box 64. The 
user also has an option of adding an additional personalized 
comment to the automatic email by inserting text into box 65 
before pressing the "Submit/Send" key shown in box 64. 
The user can obtain assistance by pressing the "Help" key in 
box 66 that would then send the user to an electronic help 
desk with answers to frequently asked questions as well as 
the ability to send an email question to the administrator of 
the ESDB System. 

[0039] If the user clicked "John Esq" shown as a hypertext 
link 67 in FIG. 10 and pressed the "Submit/Send" key in box 
64, the ESDB System presents the user with a dynamic 
HTML page shown in FIG. 11. This page allows the user to 
delete the access of "JobnEsq" to the folders and electronic 
files to which he currently has access by using the options in 
menu 70. Such access is deleted by clicking the hypertext 
link folder (which would delete the access of "JohnEsq" to 
all of the documents in that folder) as shown in hypertext 
link box 71 or by clicking the specific hypertext link 
electronic file shown in links 72 and 73 and then pressing the 
"Delete Access" key shown in box 74. The user can obtain 
assistance by pressing the "Help" key in box 75 that would 
then send the user to an electronic help desk with answers to 
frequently asked questions as well as the ability to send an 
email question to the administrator of the ESDB System. 

[0040] The user can grant "JohnEsq" greater access to 
folders or specific electronic files contained in the user's 
electronic safe deposit box by selecting one of the hypertext 
links in box 76 shown in FIG. 11. Box 76 displays all of the 
folders and the electronic files in each folder to which 
"JohnEsq" does not currently have access. The user can 
grant "JohnEsq" access to all of the electronic files con- 
tained in a folder by clicking one or more hypertext link 
folders shown in links 77, 78, 79, 80, and 81 or access to a 
specific electronic file by clicking one or more of the 
hypertext link files shown in links 82, 83, 84, 85, 86, 87, 88, 
89 and 90. After the user makes his selection, he presses the 
"Grant Access" key shown in box 91 which allows the 
ESDB System to record the requested action and grant 
"JohnEsq" access to the selected folder(s) or electric file(s). 
The user can obtain assistance by pressing the "Help" key in 
box 92 that would then send the user to an electronic help 
desk with answers to frequently asked questions as well as 
the ability to send an email question to the administrator of 
the ESDB System. 

[0041] The ESDB System records the activity in a user's 
electronic safe deposit box and can display such activity by 
the user clicking the "Click here to review prior box activ- 



ity" hypertext link 100 in FIG. 4. When such link is pressed, 
the user is shown a dynamic HTML page similar to FIG. 12. 
The information in box 101 indicates the prior activity for 
the user's electronic safe deposit box for the last 3 months 
as referenced in item 102. The ESDB System can display the 
activity in the user's box for any period of time (including 
periods exceeding 3 months) depending upon the program- 
mable parameters of the ESDB System. The user can return 
to me previous page by pressing the "Back to Prior Screen" 
link 103. 

[0042] While the invention has been described in the 
context of a preferred embodiment, it will be apparent to 
those skilled in the art that the present invention may be 
modified in numerous ways and may assume many embodi- 
ments other than that specifically set out and described 
above. Accordingly, it is intended by the appended claims to 
cover all modifications of the invention that fall within the 
true scope of the invention. 

[0043] Benefits, other advantages, and solutions to prob- 
lems have been described above with regard to specific 
embodiments. However, the benefits, advantages, solutions 
to problems, and any element(s) that may cause any benefit, 
advantage, or solution to occur or become more pronounced 
are not to be construed as a critical, required, or essential 
feature or element of any or all the claims. As used herein, 
the terms "comprises, ""comprising," or any other variation 
thereof, are intended to cover a non-exclusive inclusion, 
such that a process, method, article, or apparatus that com- 
prises a list of elements does not include only those elements 
but may include other elements not expressly listed or 
inherent to such process, method, article, or apparatus. 

What is claimed is: 

1. A computerized system for managing electronic data of 
a user over a network of computers comprising: 

an electronic safe deposit box in electrical communication 
with said user, wherein said electronic safe deposit box 
stores a first user data file and a second user data file; 

an alphanumeric designator which designates a first 
alphanumeric code to said fist data file and a second 
alphanumeric code to said second data file; and 

an access controller to manage access to said electronic 
safe deposit box, said access controller interfacing via 
said network of computers with a third party having a 
unique designator. 

2. The computerized system for managing electronic data 
of claim 1, wherein said user can designate a set of access 
privileges for said third party, said access privileges stored. 

3. The computerized system for managing electronic data 
of claim 2, wherein said access privileges comprise read 
privileges. 

4. The computerized system for managing electronic data 
of claim 3, wherein said access privileges comprise print 
privileges. 

5. The computerized system for managing electronic data 
of claim 4, wherein said access privileges comprise modify 
privileges. 

6. The computerized system for managing electronic data 
of claim 2, wherein said access controller prompts said third 
party to enter said unique designator, and determines 
whether said third party is authorized to access said elec- 
tronic safe deposit box. 
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7. The computerized system for managing electronic data 
of claim 6, wherein said access controller prompts said third 
party to enter said first alphanumeric code to access said first 
data file, 

8. The computerized system for managing electronic data 
of claim 7, wherein said access controller prompts said third 
party to enter said second alphanumeric code to access said 
second data file. 

9. The computerized system for managing electronic data 
of claim 8, wherein said access controller monitors access to 
said electronic safe deposit box by said third party. 

10. The computerized system for managing electronic 
data of claim 9, wherein said access controller automatically 



notifies said user when said third party commences access to 
said electronic safe deposit box. 

11. The computerized system for managing electronic 
data of claim 9, wherein said access controller automatically 
notifies said user when said third party terminates access to 
said electronic safe deposit box. 

12. The computerized system for managing electronic 
data of claim 9, wherein said access controller automatically 
notifies said user of a set of activities performed by said third 
party in relation to said first user data file. 

* * * * * 
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for Electronic Documents 

Copyright Notice 

5 A portion of the disclosure of this patent document contains material which is subject 

to copyright protection. The protection owner has no objection to the facsimile reproduction 
by anyone of the patent document, or of the patent disclosure as it appears in the Patent and 
Trademark Office patent files or records, but otherwise reserves all copyrights whatsoever. 

10 I. Field of the Invention 

The invention relates to the generation, storage, retrieval, handling, tracking, 
distribution, encrypting, decrypting and use of electronic documents, and more particularly to 
efficient and secure storage, retrieval, access and use of electronic documents on an open 
network or group of servers such as the Internet, a closed network or group of servers such as 
15 an Intranet, or a local area network ("LAN"), and recording and reporting the access to and 
the activities performed with respect to such electronically-stored information, data and 
documents. 

II. Background of the Invention 
20 The generation of electronic documents has long been accomplished by word 

processor applications and other programs such as computer aided-design ("CAD") 
applications, databases and spreadsheets. An obvious advantage of electronic documents is 
that they are often similar to, or based upon, earlier documents, and the earlier documents can 
simply be modified to generate the new document. 

25 A common problem with the generation of electronic documents via this modification 

method, however, is that the user must manually search for the location of information that 
must be replaced, and manually replace it. Oftentimes, certain items of old information are 

-1- 
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Fig, 21 that allows the user to move a copy of an electronic document from the user's 

personal computer or server to the Inbox Contents of his electronic safe deposit box. 

The user has the option of placing a copy of an electronic document from the Save 

Deposit Box Contents to the Document Viewing Room. When the user moves the document 

5 to the Document Viewing Room, the ESDB System will automatically generate an 

alphanumeric pass-phrase for such electronic document and prompt the user to provide an 

email address to send the pass-phrase to the recipient. When the email is transmitted, the 

recipient will receive the email with the pass-phrase and a hypertext link to the ESDB System. 

When the recipient depresses the hypertext link, the recipient will be presented with a screen 

10 welcoming him to the ESDB System. If the recipient's email address and pass-phrase 
correspond with the information contained in the ESDB System's database with respect to 
such electronic document, the recipient will be able to view the electronic document. The 
recipient will not be able to download or modify the electronic document Future versions of 
the ESDB System will provide for the email to be encrypted using a double-key process 

15 residing within the ESDB System. 

The ESDB System will assign a private key and public key to each user (i.e., owner of 
an electronic safe deposit box). The user may use his public key to encrypt documents within 
his electronic safe deposit box. The double key system will reside within the ESDB System. 
The ESDB System will associate the user with his private key when the user provides a 

20 unique alphanumeric phrase assigned to the user within the ESDB System. By having the 
double key system reside within the ESDB System and accessible by providing a 
alphanumeric phrase, the user will may view his encrypted documents from any computer and 
the user may digitally sign documents through a "one-click" process in which the user clicks a 
"SIGN DOCUMENT" button and then provides his unique alphanumeric phrase associated 

25 with the user's private key. This process is much simpler than current applications and 
methods of private and public key systems. 

- 17- 
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1. A computerized system for managing electronic documents by a user over a network 
5 of computers comprising: 

an interactive document generator for generating an electronic document, the 

document generator including a connection for a user terminal; 
an electronic safe deposit box in electronic communication with said document 

generator, wherein said electronic safe deposit box stores document 
1 0 content data corresponding to said electronic document; 

a document handler allowing said user to view and modify said electronic 

document from said user terminal and track activity associated with a 

user's electronic safe deposit box; and 
a document transmitter with which said user can cause such electronic 
1 5 document to be transmitted to a third party remote from said systems. 

2. The computerized system for managing electronic documents of claim 1, further 
comprising a computer telefacsimile receiver that allows documents to be 
faxed/encrypted directly into the user's Inbox Contents of his electronic safe deposit 

20 box. 

3. The computerized system for managing electronic documents of claim 2, further 
comprising a computer email sender which automatically notifies the user of box 
activity on a periodic basis and allows the user to email electronic documents from his 

25 Save Deposit Box Contents. 

4. The computerized system for managing electronic documents of claim 3, further 
comprising: 

a private and public key computer generator which automatically assigns 
30 private and public keys to users for encryption, decryption and digital 

signatures of electronic documents associated with a unique 

alphanumeric pass-phrase; and 
a cipher that enciphers and deciphers electronic documents. 

35 5. The computerized system of claim 4, wherein said document generator comprises a 

-20- 
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private key and a public key to said user, said private key and public key both 

being associated with a unique alphanumeric pass-phrase, to allow the user to 

digitally sign electronic documents within the system. 



5 24. The computerized system of claim 4, further comprising a document sharing 
subsystem for said user to share said electronic document with a third party, 
said document sharing subsystem comprising an e-mail notification for 
notifying said third party, said e-mail notification being sent from said system 
and including a unique alphanumeric pass-phrase and a hypertext link back to 
10 said system, whereby said third party can access said electronic document by 

submitting said pass-phrase to said system. 



15 
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Title: Certificate path generating protocol (CPGP) for authenticated 
signaling in ATM networks 

Abstract: Authenticated signaling is an important security service to be 
provided by ATM networks to guard against threats of spoofing and 
impersonation. The ATM Forum specifies public key cryptography to be the 
default ATM authentication mechanism and directory services like X.509 to 
be the infrastructure for public key. . . 

. . . With public key cryptography, authenticated signaling requires the 
signaling message to be authenticated with a digital signature signed 
by the private key of the calling party. To verify the digital 

signature , the called party needs to obtain the public key of the calling 
party and a . . . 

... called the certificate path between two parties. The certificate 
exchange protocol (CEP) , proposed by the ATM Forum, requires that another 
bi-directional connection be established between two parties to change 
public . . . 

... an ideal approach. We propose a certificate path generating protocol 
(CPGP) , which is embedded into ATM signaling and routing protocols to 
generate a certificate path inside a signaling message on-the-fly as the 
signaling message travels through the ATM network. In CPGP all that a 
calling party needs to do for authenticated signaling is to put into the 
signaling message its own public key certificate and the digital 

signature of the signaling message signed using its private key . The 
CPGP builds the rest of the certificate path for it. The proposed protocol 
is embedded into the ATM signaling and routing protocol so that no 
performance overhead is incurred to establish the certificate... 
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CPGP, all that a calling party needs to do for authenticated signaling is 
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Abstract: Merrill Lynch signed on with Silanis Technology to test the 
company's electronic signature software, a pilot that will initially be 
deployed internally and then in the brokerage firm. . . 

... be available to users via the firm's Web site, helping Merrill 
streamline its online electronic document procedures. An online user 
creates what's called an ePersona, which contains personal information, 
including his or her handwritten signature. A private key identifier is 
assigned to the ePersona so, similar to the PIN a customer memorizes to use 
his or her ATM card, the ePersona ID is unique to the user, adding a 
layer of security. The software permanently imbeds the electronic 

signature to an electronic form such that, should the document or the 
signature be altered in any way, the... 
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...Abstract: these already exists in large numbers and is very successful 
namely the cash dispenser or automatic teller machine ( ATM ) with its 
plastic, magnetic striped card and personal identification number. 
Authentication of digital signatures , enciphering and deciphering 
functions, electronic checks, signature tokens for negotiable documents 
and other types of secret keying as a protection against theft... 
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He has gotten the in the northwestern fisheries area, the environmentalists to sit down with the 
fishermen and all these stakeholders to come up with a way of governing that system better. So, we are 
fortunate that he is personally taking initiative in this area in health care because he feels that if there is a 
way to do this in health care and to prove how this could work, it would be very instructive. 

So, for your glossary, he has coined a new term; CHAORD(?). CHAORD is an organization that 
combines chaos and order and blends them seamlessly so that you have the effective tension between 
chaos and order come together in a way that allows people's creative spirits really to come about. So, all 
this is abstract and theoretical, which is what I am most interested in. But, in fact, there is a very 
practical side of what I am here to talk to you about and that is there is a group of people that have 
already started to try to build a system like this for health care. 

If you can see on the diagram — that is the bubble diagram there — this is sort of the lineage of what we 
have been able to accomplish so far and there are two sort of lead organizations now that are leading this 
charge. One is the National Health Foundation, which is an L.A.- based organization devoted to the 
issues that around the uninsured, led by Rita Moya(?), and the Center for Advancement for Health, 
which is a D.C. -based center that - that is a group that is interested in psychosocial behaviors of health 
and how information sort of gets used by people. 

These two organizations have come together to try to start a dialogue amongst a wide variety of 
organizations, ranging American Hospital Association to the American Association of Health Plans to 
the College of Emergency Physicians, just to name a few, to define a common vision, much like you 
have been doing here. 

That is the other document that we have passed out here, this revised draft concept paper. It sort of gives 
you our sense of what our vision would be and what we are pursuing in trying to build a chaordic 
organization for health care. 

Probably the most concrete idea we ever could get our hands around is the idea of a electronic safe 
deposit box, where you could your information like anything from your living will to your insurance 
card to your health record that would have, you know, public and private keys that could be used to give 
access to this information as you wish it to be given out. 

And a VISA kind of organization could, in fact, help, you know, either foster the development of these 
electronic safe deposit boxes or actually create them themselves. We are not so much interested in the 
technology at this point because we see this issue fundamentally as a governance issue. There are all 
sorts of technology out there; Smart Cards, everything, you know. I don't even begin to know all of them 
myself 

What we need is an organization that can come together and agree on a rapid basis and a revolving basis, 
standards on operational questions that can be quickly adopted in the real world because they are 
benefiting people on a day-to-day basis. So, that is what we — and, in fact, along these ~ the most recent 
development of our outfit has been the sort of learning of a « we have learned of a similar kind of effort 
at the — that has been spearheaded by the Department of Veteran Affairs, Bureau of Indian Health 
Services and the Department of Defense. 

I think it is fair to say that what they have learned in trying to build an electronic medical record for their 
folks is that it wouldn't make any sense for them to have a system that just works for them if it didn't 
work for everyone because their folks, you know, will move in and out of their own particular systems. 
So, they have understood and I think, quite correctly that we need to make this a broader societal kind of 
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